Skip to content

Overview

Reading time 7 min

The APIsec allows you to integrate you project with a number of platforms. Integrations provide connectivity across platforms and automate the processes.

5.1. Reports Storage

You can export reports to AWSS3, GCP, and Azure cloud accounts. The reports are sent automatically at the beginning of every month. If you have stored the credentials for the Report Storage account in the vault, it can be used or you can add new credentials.

APIsec Screenshot

The process of adding the new credentials is explained in chapter 8.

Note: When you add New Credentials, for the Account Type selection dropdown menu, select your application from the Report Storage section as shown in the screenshot.

report-storage-account-type-selection

5.2. Issue Tracker

The Issue Tracker automates the process of vulnerability life-cycle management by providing the option to integrate issue tracking a wide range of platforms like Trello, GitHub, Jira, etc.

This can be setup by choosing the Profile and the Issue Tracker. This example shows 'APIsec Issues'. All of the vulnerabilities will be logged in the APIsec Project Dashboard.

APIsec Screenshot

You can choose the Issue Tracker system that best suits your requirements. The credentials vary with the chosen system. The process for adding the new credentials of the Issue Tracker system is the same as explained in the vault documentation..

5.3. Notifications

Notifications allow you to integrate Slack Channels with the Project for receiving notifications and Scan Reports.

APIsec Screenshot

5.4. Git Backup

With this feature, you can integrate a Git source code repository for backing up Configurations, Playbooks, and other APIsec Project files. It also allows the security engineers to collaborate as a team for adding Playbooks, Payloads, etc.

APIsec Screenshot

5.5. CI/CD

APIsec offers an amazing feature for terminal / command line users to trigger on-demand scans via external CI/CD Systems. It supports ten CI/CD platforms that include AWS, GitHub Actions, Jenkins, MS Azure Pipelines and more.

Note: The JQ and wget commands are prerequisites for this set up.

APIsec Screenshot

5.6. Configure Single Sign-On

5.6.1. Okta account

This option is available in the 'Integrations Tile'.

APIsec screenshot

Click on the 'SSO tile' and select the integrations type as Okta.

Screenshot 2023-07-25 121143

A guide on 'How to Configure OKTA SSO for APIsec?' is also available in the instructions which can be accessed by clicking on the question in blue. The link redirects you to a Google doc.

5.6.2. Azure AD account

This option is available in the 'Integrations Tile.

APIsec screenshot

Click on the 'SSO tile' and select the integration type as Azure AD.

Screenshot2

A guide on 'How to Configure Azure SSO for APIsec?' is also available in the instructions which can be accessed by clicking on the question in blue. The link redirects you to APIsec docs.